Yeah, I'd like to see a fully open HSM design, where the design can be audited by anyone, and the components are standard and/or easily inspectable by users. Attestation keys and final assembly are done by a trusted entity -- in the case of a bank, that might be ABA; in the case of Facebook, probably Facebook or maybe an industry association or EFF, and in the case of my personal server, me.
Fuck the FIPS process; if you made a decent design which was actually useful, a lot of non-FIPS-requiring entities would benefit from it. Design-to-meet, but let only those who actually need FIPS go through the process of assembling and certifying their particular instantiations of the open design for FIPS. For personal use, I'd consider an open design which never touches NIST to be more trustworthy than SafeNet or Thales products.
Fuck the FIPS process; if you made a decent design which was actually useful, a lot of non-FIPS-requiring entities would benefit from it. Design-to-meet, but let only those who actually need FIPS go through the process of assembling and certifying their particular instantiations of the open design for FIPS. For personal use, I'd consider an open design which never touches NIST to be more trustworthy than SafeNet or Thales products.